CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 1 #airheadsconf #airheadsconf

AirWave – Practical workshop

Enabling Secure, Reliable and Cost effective WLANs

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 2 #airheadsconf

Where does AirWave fit

Best practices around AirWave setup

How to leverage AirWave to solve WLAN issues

What’s new in AirWave 7.6

Q & A

Agenda

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 3 #airheadsconf

•  Multi-vendor wired/WLAN environments –  Mixed WLANs, L2/L3 switch vendors, Routers, Radius

•  Lack of End-to-End visibility –  Non-Integrated disparate consoles – WLAN, IDS, Wired etc

•  Transient problems difficult to replicate –  Mobility brings a unique challenge for troubleshooting

•  RF Analysis expertise is limited –  How to leverage your WLAN SME across the network

Challenges in Network Management

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 4 #airheadsconf

•  Multi-vendor Network Management solution –  End-to-End visibility for wireless and wired network –  Monitor almost any vendor equipment

•  Integrated Threat Management –  RAPIDS for Rogue detection and mitigation –  Consolidated wireless threat visibility

•  Troubleshooting tools for RF Analysis –  Client oriented troubleshooting for Level 1 Helpdesk –  RF Metrics and Location analysis for Level2/3 SME

•  Pro-active triggers and Extensive Reporting –  Actionable events giving heads-up before end users call-in –  Customizable reporting to gather trending info on WLAN

Why AirWave for Network management

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 5 #airheadsconf

WLAN Management Architecture

-  APs/AMs -  802.11 a/b/g/n radios -  Integrated IDS/IPS -  Spectrum Analysis

-  Controller (HW/VC) -  Centralized Radio Management -  Role based Policy Enforcement -  Centralized Analysis

-  Airwave -  Device Management -  WLAN Troubleshooting -  Visualization & Reporting

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 6 #airheadsconf

AirWave Data Flow

Airwave

Controller Virtual Controller

NMS Email, SNMP, Syslog

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 7 #airheadsconf

Where does the Data come from SN

MP

Trap

s A

MO

N

Airwave

Controller

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 8 #airheadsconf

Configuring AirWave Integration (Instant)

HTT

PS

Airwave

Virtual Controller

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 9 #airheadsconf

Configuring AirWave Integration

SNM

P Tr

aps

AM

ON

Airwave

Controller

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 10 #airheadsconf

AOS Traps received by AirWave

130+ Traps

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 11 #airheadsconf

Additional Traps to trigger alerts

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 12 #airheadsconf

Organizing AirWave setup

Groups Define Configuration Standard Devices share config in Group Defines polling intervals and protocol Share same Firmware level on devices Groups are non-hierarchical

Folders Similar to Directory structure on your PC Common monitoring, alerting Control role based access Hierarchical based organization No limit on level depth

Every device associated with ONLY 1 Group and Folder

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 13 #airheadsconf

Control and Visibility

Key RF Metrics

Historical usage

Client details

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 14 #airheadsconf

•  Rule based Rogue detection and escalation •  Wired correlation for Rogue AP detection •  Integrated IDS Event Management

Integrated Threat Management

Escalate IDS Events

Define Rogue AP Rules

Create Event Triggers AirWave provides unified view into all Wireless Threats in your network

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 15 #airheadsconf

AirWave VisualRF Location services

Visualize Rogue AP Location

Locate Interference sources

Review Coverage Heatmaps

Increases accuracy by automatically computing RF attenuation on the map

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 16 #airheadsconf

Easy Helpdesk Tool 1.  Find the device via search 2.  Check Client details : Any RF Issues ? 3.  Analyze AP, Controller, L2 switch

Help Desk tools for RF Triage

RF Heatmaps

Leverage Helpdesk to solve simple RF issues thus reducing workload on experts

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 17 #airheadsconf

Step-by-Step RF Analysis 1.  Review WLAN Stats 2.  Any Errors/Alarms on user ? 3.  Visually plot the user on the map

Forensic Analysis of RF Data

Check Connection details

Extensive RF data to help experts remotely analyze the root cause of problem

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 18 #airheadsconf

Pro-active Event Management Create Event Triggers

Notify when WLAN behavior is outside the spec

Escalate Alarms via Email, SNMP

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 19 #airheadsconf

View Reports

Compliance Reporting/Trending

Schedule Reports

Define Reports

Provide visibility to stakeholders via scheduled reports emailed automatically

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 20 #airheadsconf

Device Configuration Management

Discover Devices

Analyze Device

Audit Configuration

AirWave can Discover, Audit and Fix configuration mismatches or settings to the managed devices

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 21 #airheadsconf

Config Mgmt – Global vs Group

Device Specific (hostname)

Global/Group (VAP, AAA, SSID)

Full Device Config

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 22 #airheadsconf

•  Monitoring Features –  Sync up rogue classifications –  Rogue client monitoring –  Spectrum interferers –  Track channel utilization –  Bulk edit of VC variables including

custom variables

•  Troubleshooting and Diagnostics –  Single Sign-on to the Instant network –  Running CLI commands from AirWave •  Run a command on all APs from VC

–  Visibility into configuration errors

7.6 Release – Instant Enhancements

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 23 #airheadsconf

–  PDF Reports

–  Network Usage Report broken by folder

–  Top Clients in client session report by Bandwidth usage

7.6 Release – Reporting Improvements

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 24 #airheadsconf

•  API Improvements –  Additional API data about AP uptime and FQDN name

•  Trigger Enhancements –  Trigger on client count per BSSID (vs. AP)

–  Notes field to customize all alerts

•  Search with options –  Users can select to search on active or historical clients

•  Performance and Scalability –  AirWave PRO1500+, ENT 4000+ (extra RAM)

–  CAC Card Authentication

7.6 Release – AMP Features

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 25 #airheadsconf #airheadsconf

Thank You

CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 26 #airheadsconf #airheadsconf 26